CVE-2016-5476

Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Install.

Published: Jul 21, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-5476
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.6
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

CVSS v2:

Severity: Medium
Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / retail_integration_bus	13.2	13.2.x
oracle / retail_integration_bus	14.1	14.1.x
oracle / retail_integration_bus	13.0	13.0.x
oracle / retail_integration_bus	14.0	14.0.x
oracle / retail_integration_bus	15.0	15.0.x
oracle / retail_integration_bus	13.1	13.1.x

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
http://www.securityfocus.com/bid/91787
http://www.securityfocus.com/bid/91897
http://www.securitytracker.com/id/1036397

Vulnerability Database

289,697

CVE-2016-5476